Digital Certification

Question 1

Certification authority

Answer 1

Organization CREATE the certificates of authority. Is valid 1 year. Authority receives request, validates application, issues certificate and publishes ongoing validity status of issued certificates

Question 2

Extended validation

Answer 2

Type of digital certificate, verifies a domain and an organization subject to standardizes global global verification process.url open bar

Question 3

Registration authority

Answer 3

This is a subsidiary of certificates authority. CANNOT CREATE CERTIFICATE, can accept and process registration request and distribute certificates. This is a work offload of certificate authority

Question 4

Web of trust

Answer 4

Self generated can be trusted her own key in web of trust. In crypto is a concept to establish the authenticity of the binding between public and private key and its owner. Here everybody is a certification authority. This is a web, where you can be certificated by yourself.

Question 5

Digital certificate

Answer 5

Mechanism used to generate a private key and bind (put) a public key to its owner. Digital certificates are used by commercial entities.

Question 6

CRL - certificate revocation list

Answer 6

Validity model, maintained list of revoked certificates. 2 models are used
Pull - certificate revocation list is downloaded by user or organization
Push - certificate revocation list is automatically sent by certification authority of regular intervals

Question 7

OCSP - online certificate status protocol

Answer 7

This is certificate validity model- more efficient by CRL (certificate validation list) - process designed to query the status of certificate at the real time. Online certificates status at the real time. Online certificate status protocol is a time stamped